<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=127469634355496&amp;ev=PageView&amp;noscript=1">
Let's Talk

Let's Talk

4 Things to Know About GDPR and Why It Matters to HR
Blog Feature Subscribe
Arnaud Gouachon

By: Arnaud Gouachon on March 13th, 2017

Print/Save as PDF

4 Things to Know About GDPR and Why It Matters to HR

Compliance and Security

Est. Read Time: 3 min.

 In May 2018, the EU will implement its new data privacy regulation, called General Data Protection Regulation, or GDPR. This new regulation will have major implications for any company with employees residing in the European Economic Area, regardless of the employees citizenships. The GDPR enhances data protection for employees and carries substantial penalties for non-compliance. The May 2018 compliance deadline is on the horizon and it’s important for companies to understand the GDPR’s impact on their HR departments practices.


The requirements under GDPR are expansive and compliance will call for a concentration of time, effort, and resources from HR departments at affected companies. We’ve outlined the top 4 most important things to know about the GDPR and how it could affect your company.

 

EU GDPR and HR.png1. All companies with EU-based employees will be affected.

Even if the company is not established in Europe, any company with employees residing in the European Economic Area must comply with the GDPR. Additionally, third party vendors that process employee personal data (i.e. processors) pursuant to a contract with these companies (controllers) must also comply.

 

2. The GDPR guides a wide range of data privacy processes.

These extensive requirements will affect organizational and procedural changes within the impacted companies. The GDPR rules cover data processes that span from international transfers of employee data and security measures to employee rights concerning their data and how data is controlled and processed.

 

3. The GDPR establishes a large number of new rules.

Because the GDPR introduces a considerable amount of new information and regulations, HR departments will need time and resources to account for each new compliance area. Some of the biggest changes include expanded security breach measures and definitions of personal data, extended employee rights, and potential personnel changes, such as the appointment of a Data Protection Officer.

 

4. Non-compliance is costly.

Once the GDPR goes into effect on May 25, 2018, companies who are non-compliant will face massive penalties. Fines can be as high as 20,000,000 EUR, or up to 4% of a company’s annual global revenue. In addition, employees will be able to take legal action against, and claim damages from, both employers and their third party vendors.

 

To meet the GDPR requirements, we recommend starting the compliance process as soon as possible. Learn more about GDPR and how you can be prepared for the 2018 deadline!
View our On-Demand GDPR Webinar with Top Global Data Privacy Lawyers
View our On-Demand GDPR Webinar with Top Global Data Privacy Lawyers

You May Also Be Interested In:

3 ways HR can increase employee data privacy awareness

Last week, organizations around the world celebrated Data Privacy Day, an annual event with the goal of increasing data protection awareness. But, what can HR do to increase awareness after Data Privacy Day is over? After all, protecting personal employee data isn’t just a one-day project. Here are three things HR teams can do now to put privacy first every day:

Read More

Why HR should care about accessible technology

In honor of Global Accessibility Awareness Day we’re explaining what accessibility means and why businesses and their HR leaders should pay attention to it. As the world becomes increasingly digital, you’ll surely encounter the need to evaluate new workplace software or tools. For HR especially, considering whether new technology is accessible can make a world of difference for the employee experience. Here’s a brief overview of what you need to know about accessibility:  

Read More

How NCR stays on top of managing employee record retention guidelines

With 30,000 employees located across all 7 continents, Dana LaBarnes, Senior Director of Global HR Shared Services at NCR, has his work cut out for him. Consider how many different employee record retention guidelines his team must manage—and the fines associated with letting just one document slip through the cracks. It’s not a risk NCR (nor any company) can afford to take. To stay on top of the various document retention schedules for his geographically diverse employee population, Dana needed to find a digital solution. In this video, he explains how he made his decision:  

Read More

About Arnaud Gouachon

Arnaud leads PeopleDoc's global legal and compliance organization, bringing over 10 years of legal experience. Prior to joining PeopleDoc, Arnaud was Vice President and General Counsel for Transdev On Demand, Inc., a subsidiary of Veolia Environnement group, where his focus was on US commercial contracts, corporate law, compliance and employment law. He has two Masters degrees in law from Northwestern University in the US and Paris XII University in France, as well as a Certificate of Business Administration from Instituto de Empresa in Madrid, Spain. He is a member of the New York Bar.